JP5994996B2 - Method and system for electronic payment transaction, particularly electronic payment transaction using contactless payment means - Google Patents

Method and system for electronic payment transaction, particularly electronic payment transaction using contactless payment means Download PDF

Info

Publication number
JP5994996B2
JP5994996B2 JP2012506628A JP2012506628A JP5994996B2 JP 5994996 B2 JP5994996 B2 JP 5994996B2 JP 2012506628 A JP2012506628 A JP 2012506628A JP 2012506628 A JP2012506628 A JP 2012506628A JP 5994996 B2 JP5994996 B2 JP 5994996B2
Authority
JP
Japan
Prior art keywords
payment
card
terminal
file
response
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
JP2012506628A
Other languages
Japanese (ja)
Other versions
JP2012524927A (en
Inventor
フロレク、ミロスラブ
マサリク、ミハル
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
SMK Corp
Original Assignee
SMK Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by SMK Corp filed Critical SMK Corp
Publication of JP2012524927A publication Critical patent/JP2012524927A/en
Application granted granted Critical
Publication of JP5994996B2 publication Critical patent/JP5994996B2/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3227Aspects of commerce using mobile devices [M-devices] using secure elements embedded in M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/343Cards including a counter
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/352Contactless payments by cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/357Cards having a plurality of specified features
    • G06Q20/3574Multiple applications on card
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4012Verifying personal identification numbers [PIN]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment
    • G06Q20/425Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/04Billing or invoicing

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Description

本発明は、決済カード形式の決済手段を使用する電子決済アプリケーションの方法およびシステムに関する。本発明は、移動通信装置に挿入できるように調整される非接触型決済手段を使用する口座振替取引の方法を扱う。   The present invention relates to a method and system for an electronic payment application that uses a payment means in the form of a payment card. The present invention deals with a method of direct debit transaction using a contactless payment means that is adjusted so that it can be inserted into a mobile communication device.

一般に、POS(販売時点管理)端末は、さまざまなチップ決済カードを使用する電子決済取引を処理するのに使用される。これらの端末は、決済カード発行会社または銀行に属するクリアリングセンター形式のリモート決済プロセッサに接続される。決済処理の開始時に、決済カードのチップは初期位置にリセットされる。リセット後、カードと端末との間でカードおよび端末種別に関する情報を交換する。この基本的な識別によって、カードと端末との間の接続を、決済プロセッササーバへの通信のみならず相互通信が可能な状況となる。   Generally, point-of-sale (POS) terminals are used to process electronic payment transactions using various chip payment cards. These terminals are connected to a clearing center type remote payment processor belonging to a payment card issuing company or bank. At the start of the payment process, the payment card chip is reset to the initial position. After reset, information on the card and terminal type is exchanged between the card and the terminal. With this basic identification, the connection between the card and the terminal can be communicated with each other as well as with the payment processor server.

POS端末は、必要な決済に関するデータをカードに送信し、データの構造は、たとえば数量、通貨、日付などを含む。また、端末は、ステートメントを知らせるようにカードに要求する。カードは、設定に従って応答を作成し、電子署名で署名する。「TC」(取引証明)形式のカードの応答は、決済プロセッサによる承認が必要とされないオフライン決済の承諾を意味する。「AAC」(アプリケーション認証暗号)形式の応答は、決済があらゆる条件下でもカードによって承認されないことを意味する。本発明の主題は、ARQC(承認要求暗号)形式の応答生成時の決済処理の方法、手続きである。そのような応答は、カードが決済プロセッササーバによる認証および協働を必要とすることを意味する。   The POS terminal transmits data relating to necessary settlement to the card, and the data structure includes, for example, quantity, currency, date, and the like. The terminal also requests the card to inform the statement. The card creates a response according to the settings and signs it with an electronic signature. A card response in the “TC” (transaction proof) format means acceptance of an offline payment that does not require approval by the payment processor. A response in the form of “AAC” (Application Authentication Cryptography) means that the payment is not authorized by the card under all conditions. The subject of the present invention is a method and procedure for settlement processing when generating a response in the ARQC (approval request encryption) format. Such a response means that the card requires authentication and cooperation by the payment processor server.

応答が主にARQC形式の決済ファイルの形式で生成された後、カードは、この暗号化された決済ファイルをプロセッサに送信し、プロセッサの応答を受信するまで待機する。待機中、決済カードは、カードと決済プロセッサとの間で持続的な通信チャネルを生成するために端末と接触した状態にある必要がある。このチャネルが中断すると、決済処理が終了する。決済プロセッサが、ARPC応答ファイル(承認応答暗号)をカードに返信する場合、このファイルは、端末を介して決済カードに送信され、決済カードは、このほかの手続き(特にARPCなど)のために応答ファイルから指示を復号して、TC、最終的には、AACの形式で結果を端末に報告する。   After the response is generated mainly in the form of a payment file in ARQC format, the card sends this encrypted payment file to the processor and waits until it receives a response from the processor. During standby, the payment card needs to be in contact with the terminal to create a persistent communication channel between the card and the payment processor. When this channel is interrupted, the payment process ends. When the payment processor returns an ARPC response file (authorization response encryption) to the card, this file is sent to the payment card via the terminal, and the payment card responds for other procedures (especially ARPC, etc.). The instruction is decoded from the file, and the result is reported to the terminal in the form of TC and finally AAC.

現在まで知られている決済カードと端末/決済プロセッサとの間の通信方式の基本特徴は、双方向通信時の常時接続、特定のキャッシュレス決済ハードウェア装置の持続的かつ途切れないチャネルである。この通信は、約数秒、最終的には、10分の1秒持続する。カードと端末との間の接続が中断すると、カードアプリケーションが新たに再起動し、たとえば、アプリケーションのカウンタが増加することによって記録される。カウンタデータが変化すると、新たに生成された決済ファイルARQCが変化することから、中断後は、接続の中断前に生成されたデータを使用しても決済処理を正常に完了することができなくなる。接触により接続する標準の決済カードを使用する場合、適切なリーダのスロットからカードを取り出すのが早過ぎる場合にのみ、このリンクが中断するため、問題なく高信頼性通信リンクを保持することができる。   The basic features of the communication method between the payment card and the terminal / payment processor that have been known so far are the always-on connection during two-way communication and the continuous and uninterrupted channel of a specific cashless payment hardware device. This communication lasts about a few seconds, and finally a tenth of a second. When the connection between the card and the terminal is interrupted, the card application is restarted anew, for example recorded by incrementing the application counter. When the counter data changes, the newly generated payment file ARQC changes. Therefore, after the interruption, the payment process cannot be normally completed even if the data generated before the interruption of the connection is used. When using a standard payment card that connects by contact, the link is interrupted only if the card is removed too early from the appropriate reader slot, so a reliable communication link can be maintained without problems. .

非接触型決済手段の利用増加に伴い、通信チャネルの安定性に関する問題が生じている。決済処理時に、途切れることなく集中して非接触型リーダの到達範囲に非接触型決済手段を保持することを支払者に要求することは適切ではない。通常、非接触型リーダは、他の機器との混信を防止し、非接触型フィールドを生成するためのエネルギー需要を低下させ、安全性リスクを低減するために、到達範囲の領域が限定される。決済通信処理を、幾つかの中断フェーズに分けて段階的に行うことができる解決法が必要である。しかし、現在までこの要望に応える手続きおよび方法は知られていない。   Along with the increased use of contactless payment means, problems regarding the stability of communication channels have arisen. It is not appropriate to request the payer to keep the contactless settlement means within the reach of the contactless reader in a concentrated manner without interruption during the settlement process. Typically, non-contact readers have limited reach areas to prevent interference with other devices, reduce energy demands to generate non-contact fields, and reduce safety risks. . There is a need for a solution that allows the payment communication process to be performed step by step in several interruption phases. However, there are no known procedures and methods to meet this demand to date.

非接触型決済カードが、端末との接触型接続にも適した解決法が用いられている。そのような構成では、決済の大部分は、決済カードが決済プロセッサから応答を待たない決済カードと端末との間の非接触型リンクを介して実現される。カードと決済プロセッササーバとの間の双方向通信を実現するために、カードが端末と定期的、たとえば決済10回に1回は接触型接続していることが必要である。次に、カードは、決済プロセッサから指示を受信して、実行する。この構成は、ユーザーの快適度を低下させ、何よりも、決済カードの接触型インタフェースを要求することから、移動通信装置内の決済カードを使用する決済には適用できない。さまざまな移動通信装置、たとえば、携帯電話を接触による方法でPOS端末と接続するよう要求することは不可能である。   A solution in which a contactless payment card is also suitable for contact connection with a terminal is used. In such a configuration, the majority of payments are realized via a contactless link between the payment card and the terminal where the payment card does not wait for a response from the payment processor. In order to realize bidirectional communication between the card and the payment processor server, it is necessary that the card is contact-connected with the terminal periodically, for example, once every 10 payments. The card then receives and executes instructions from the payment processor. This configuration reduces user comfort and, above all, requires a payment card contact-type interface, and thus cannot be applied to payment using a payment card in a mobile communication device. It is impossible to request various mobile communication devices, for example mobile phones, to connect to POS terminals in a contact-oriented manner.

上記のような短所は、非接触型決済取引の方法、特にカードのリセット後に、カードが決済端末から決済データを受信する方法を含む非接触型決済手段を使用することにより、かなり解消される。これらの決済データに基づいて、主にARQC形式で決済ファイルが作成され、電子署名される。この決済ファイルは、カードと決済端末との間のリンクを介して決済プロセッサに送信され、次にカードには、暗号化形式の元の決済ファイルに関するデータも含む主にARPC形式の応答ファイルがプロセッサから返信される。カードは、応答ファイルを処理して、復号し、最終的には、本発明に従い、主にTC形式またはAAC形式の決済に対する肯定的または否定的なステートメントを決定し、形成し、端末に送信する。本発明の主題は、1つの決済取引の処理時に、カードと端末との間の通信リンクが中断されるという事実にある。基本的に、この中断は、決済ファイルをカードから端末に送信した直後に発生しうる。端末からのデータの初期受信、ARQC形式の決済ファイルの生成および端末への送信は、約数ミリ秒継続し、端末リーダの近傍にカードを安定して配置している間に実現される。決済プロセッサからの応答ファイルは、カードと端末との間の元の通信リンクが中断した後に、カードによって受信される。決済取引処理および前述の通信の2つのフェーズは、カードのリセットにより分割され、第2フェーズでは、カードと端末との間の通信リンクの中断前にカードで作成されたデータが使用される。1回の決済取引時のカードが新たにリセットされることは、通信リンクの再確立によって誘発される。   The disadvantages as described above are substantially eliminated by using a contactless payment method including a method of contactless payment transaction, particularly a method in which the card receives payment data from the payment terminal after the card is reset. Based on these payment data, a payment file is created mainly in ARQC format and digitally signed. This payment file is transmitted to the payment processor via a link between the card and the payment terminal, and the card then contains a response file mainly in ARPC format that also contains data relating to the original payment file in encrypted form. Reply from. The card processes and decrypts the response file, and finally determines, forms and sends to the terminal a positive or negative statement for a payment mainly in TC or AAC format according to the present invention. . The subject of the present invention lies in the fact that the communication link between the card and the terminal is interrupted when processing one settlement transaction. Basically, this interruption can occur immediately after sending the payment file from the card to the terminal. Initial reception of data from the terminal, generation of an ARQC format payment file and transmission to the terminal last for about several milliseconds, and are realized while the card is stably placed in the vicinity of the terminal reader. The response file from the payment processor is received by the card after the original communication link between the card and the terminal is interrupted. The two phases of settlement transaction processing and communication described above are split by card reset, and in the second phase, data created on the card before the communication link between the card and the terminal is interrupted is used. The new reset of the card at the time of one settlement transaction is triggered by the re-establishment of the communication link.

上に記載した通信機構は、安全な方法で実現でき、同時に、特にARQC形式の電子署名された決済ファイルが、カードのメモリに保存され、少なくとも主にARPCとして、決済プロセッサから受信、続行するまで、特定の応答ファイルをメモリに保存されるように一般的なEMV(Europay(登録商標)、MasterCard(登録商標)、VISA(登録商標))の手続きにほとんど介入しないで実現することができる。特にARQCとしての決済ファイルの保存は、提示する解決法の基本特徴であり、これは、中断および第2フェーズに至る手続きによって、進行中の決済取引を取消したり、終了したりしないように、決済取引の処理をフェーズに分けることを容認することによる。   The above-described communication mechanism can be realized in a secure manner, and at the same time, an ARQC format digitally signed payment file is stored in the memory of the card, at least mainly as ARPC, until it is received from the payment processor and continues It can be realized with little intervention in general EMV procedures (Europay (registered trademark), MasterCard (registered trademark), VISA (registered trademark)) so that a specific response file is stored in a memory. In particular, saving the payment file as an ARQC is a basic feature of the proposed solution, which is to make sure that the payment transaction in progress is not canceled or terminated by interruption and the procedure leading to the second phase. By allowing the transaction processing to be divided into phases.

カードは、受信した応答ファイルを復号し、応答ファイルの作成時に決済プロセッサによって使用された決済ファイルに関する情報を取得する。ARQC決済ファイルは、カードのための他の指示およびスクリプトを保存できる応答ファイルに暗号化される。カードは、以前に生成、保存された決済ファイルと、応答ファイルに含まれる決済ファイルとを比較し、次に、決済に対する拒否または承認のステートメントを作成する。決済に対して承認する場合のカードの条件は、カードに保存された以前に作成された決済ファイルと、復号した応答ファイルから生成された決済ファイルが等しいということである。それは、カードが、第2の処理フェーズにおいて、他の動作以外にも、保存されているARQCファイルを、決済プロセッサで作成されたARPCの基盤となったARQCファイルと比較することを意味している。   The card decrypts the received response file and obtains information about the payment file used by the payment processor when creating the response file. The ARQC payment file is encrypted into a response file that can store other instructions and scripts for the card. The card compares the payment file previously generated and saved with the payment file contained in the response file and then creates a rejection or approval statement for the payment. The card condition for approving payment is that the payment file created previously saved on the card is equal to the payment file generated from the decrypted response file. That means that in the second processing phase, the card compares the stored ARQC file with the ARPC file that is the basis of the ARPC created by the payment processor, in addition to other operations. .

応答ファイルを受信した後に、端末は、カードと端末の通信リンクの再接続を要求する。カードと端末の通信リンクの再確立した後に、カードは、決済プロセッサからの応答により補完される元のCDOLと比較されるCDOL(カードリスク管理データ対象リスト)形式の決済データを再送信することを端末に要求する。   After receiving the response file, the terminal requests reconnection of the communication link between the card and the terminal. After re-establishing the communication link between the card and the terminal, the card resends the payment data in the form of CDOL (Card Risk Management Data Target List) which is compared with the original CDOL supplemented by the response from the payment processor. Request to the terminal.

決済カードが、携帯電話などの移動通信装置に含まれている場合に有利である。そのような決済手段の考えうる拡張の視点から、一般に携帯電話は、さまざまなメモリカードを入れるスロットを有するため、決済カードは、microSD(商標)型、miniSD(商標)型またはSD型のメモリカードに配置されていれば好適である。   This is advantageous when the payment card is included in a mobile communication device such as a mobile phone. From the viewpoint of possible expansion of such a payment means, generally, a mobile phone has a slot into which various memory cards can be inserted. Therefore, the payment card can be a microSD (trademark) type, a miniSD (trademark) type, or an SD type memory card. It is suitable if it is arrange | positioned.

決済取引時における、既存の1つのフェーズの通信システムでは、決済プロセッサからカードへの逆方向の通信は常に、決済ファイルを決済プロセッサに送信する際に使用されたものと同じ通信チャネルによって実現されていた。新規の方法は、時間の視点のみならず、ハードウェアの視点からも、これらのフェーズを分割することを可能にする2つのフェーズによって表わされる。応答ファイルの転送には、決済ファイルの転送に使用したものとは異なる通信経路を使用することができる。それは、カードを含む移動通信装置が登録されている移動通信網を介する接続でありうる。移動通信網は、応答ファイルを送信するのに使用され、応答ファイルは、SMS形式で受信する携帯電話を介してカードに入る。これは、端末が応答ファイルを受信した後に、端末とカードとの間の通信リンクが予め設定された時間制限内に回復しなかった場合に発生しうる。そこで、端末がこの状況に関する情報を決済プロセッサに送信し、決済プロセッサは、異なる方法で応答ファイルのカードへの送信を実施する。   In the existing one-phase communication system at the time of payment transaction, the reverse communication from the payment processor to the card is always realized by the same communication channel used to send the payment file to the payment processor. It was. The new method is represented by two phases that make it possible to split these phases not only from a time point of view, but also from a hardware point of view. For the transfer of the response file, a communication path different from that used for the transfer of the settlement file can be used. It can be a connection through a mobile communication network in which mobile communication devices including cards are registered. The mobile communication network is used to send a response file, which enters the card via a mobile phone receiving in SMS format. This can occur if the communication link between the terminal and the card does not recover within a preset time limit after the terminal receives the response file. The terminal then sends information about this situation to the payment processor, which performs a response file transmission to the card in different ways.

POS端末を介して同じ通信経路が使用される場合、この端末は、決済プロセッサから応答ファイルを受信した後に、決済ファイルを決済プロセッサに送信した際のフェーズの決済端末識別子とは異なる識別子を有する端末としてカードに登録するのが好適である。基本的に、異なる識別子プレフィックスを有する端末は、既に開始している決済取引を終了するために、後処理端末としての接続を試行する信号をカードに供給することを意味する。この種の構成では、端末は、カードとの通信リンクを再確立するための準備として、応答ファイルを保持する。   When the same communication path is used via the POS terminal, this terminal has an identifier different from the payment terminal identifier of the phase when the payment file is transmitted to the payment processor after receiving the response file from the payment processor. It is preferable to register it as a card. Basically, a terminal with a different identifier prefix means to supply a signal to the card to try to connect as a post-processing terminal in order to end a payment transaction that has already started. In this type of configuration, the terminal maintains a response file in preparation for re-establishing a communication link with the card.

また、現在の技術水準で示される短所は、非接触型決済取引の方法、特に、本発明による決済カードと、端末と、端末および決済プロセッサの接続とを含む非接触型決済装置を利用することによって、かなり解消される。また、本発明の主題は、決済カードは、決済ファイル、好ましくはARQC形式の決済ファイルの保存するためのメモリを備え、カードと端末との間の通信リンクが終了して、カードがリセットされた後も、決済ファイルはメモリに保存されるという事実にある。端末は、主にARPC形式の応答ファイル用の一時記憶用メモリを備え、応答ファイルを受信した後に、識別子データの変更に応じて調整される。必要とされる安全性を達成する視点から、決済ファイルの保存するためのカードのメモリは、安全素子の形式であることが必要である。   Further, the shortcomings shown in the current technical level are to use a contactless payment transaction method, in particular, a contactless payment apparatus including a payment card according to the present invention, a terminal, and a connection between the terminal and the payment processor. Is considerably eliminated. The subject of the invention is also that the payment card comprises a memory for storing a payment file, preferably an ARQC format payment file, the communication link between the card and the terminal is terminated and the card is reset Later, the fact is that the payment file is stored in memory. The terminal mainly includes a temporary storage memory for an ARPC format response file, and is adjusted according to the change of the identifier data after receiving the response file. From the point of view of achieving the required security, the memory of the card for storing the payment file needs to be in the form of a safety element.

有利な構成では、決済カードが移動通信装置内、好ましくはmicroSD型、miniSD型またはSD型のメモリカードにあり、メモリカードが、端末との接続のための通信素子を含むように、システムを設定することができる。そうすることにより、決済カードキャリアまたはさまざまな決済カードキャリアのそれぞれの機能に関してのみならず、携帯電話と端末との間の通信チャネルの生成に関しても、携帯電話の更新が達成される。この通信は、主にNFC標準に準拠して実行される。   In an advantageous configuration, the system is set up so that the payment card is in a mobile communication device, preferably a microSD, miniSD or SD type memory card, and the memory card includes a communication element for connection with the terminal. can do. By doing so, updating of the mobile phone is achieved not only with respect to the respective functions of the payment card carrier or the various payment card carriers, but also with respect to the generation of the communication channel between the mobile phone and the terminal. This communication is mainly performed according to the NFC standard.

本発明は、図1〜5でさらに詳細に記載する。   The present invention is described in further detail in FIGS.

電子決済取引のための既存の方法および接続のアルゴリズムを示す図である。FIG. 2 illustrates an existing method and connection algorithm for electronic payment transactions. 電子決済アプリケーションを処理する2つの分離可能なフェーズを有するアルゴリズムを示す図である。FIG. 3 illustrates an algorithm having two separable phases for processing an electronic payment application. 第1のフェーズ、つまり前処理で、挿入したメモリ上に決済カードを備え、アンテナを有する携帯電話による非接触型、口座振替取引のためのシステム接続スキームを表す図であって、命令の方向およびファイルの流れは、頂点から下方に向かう順番で示す図である。In the first phase, i.e. pre-processing, a system connection scheme for a contactless, direct debit transaction with a mobile phone with a payment card on the inserted memory and with an antenna, comprising: The flow of the file is shown in the order from the top to the bottom. 端末を介したカード上の転送に関する第2フェーズの後処理を示す図3によるスキームに関連する接続スキームの図であって、命令の方向およびファイルの流れを、頂点から下方に向かう順番で示す図である。Fig. 4 is a diagram of a connection scheme related to the scheme according to Fig. 3 showing the post-processing of the second phase for transfer on the card via the terminal, showing the direction of commands and the flow of files in order from the top down. It is. 図3に示すスキームに関連する接続スキームであるが、第2のフェーズ、SMSメッセージによるARPC転送式の後処理を示す図であって、命令の方向およびファイルの流れは、頂点から下方に向かう順番で示す図である。FIG. 4 is a connection scheme related to the scheme shown in FIG. 3, but showing the second phase, post-processing of the ARPC transfer type by SMS message, in which the direction of the instruction and the flow of the file are in order from the top to the bottom It is a figure shown by.

本実施例では、システムは、移動通信装置4、NFCリーダを備える端末2と、決済プロセッササーバ5と、端末2と決済プロセッササーバ5との間の接続とを含む。移動通信装置4は、たとえば、ノキア6131携帯電話によって代表される。microSD型のメモリを備える着脱可能なカード1は、移動通信装置4のスロットに挿入される。決済カード1およびNFC通信素子7は、一般的な標準寸法を有するメモリを備える着脱可能なカード1に配置される。カード1は、決済ファイルの保存のためのメモリを備え、メモリは安全素子の形式であり、それぞれ安全素子の実領域の形態である。ARQC決済ファイルは、カード1がリセットした後も保存される。カード1は、取引の第1フェーズでカード1と端末2との間の通信リンク3を中断した後に、端末2へのカード1の再接続によってリセットされる。端末2は、特にARPC形式の応答ファイルの一時記憶用メモリを備えている。端末2は、可変識別子プレフィックスを有し、応答ファイルが受信された後に、識別子データを変更するように調整される。第1フェーズでは、端末2は、12型の端末2(販売者側にあるPOS端末2)として登録され、第2フェーズでは、12tc2型の端末2または可能であれば27型の端末2(Post_Process_Terminal)として登録される。端末型の変更は、通信メッセージを正しく照合するのに有用であり、原則として、たとえば27型の端末の新しい型番号でありうる。また、既存の処理システムに端末の新しい型番号を導入することが問題となる場合、同じ型番12で、異なる端末機能を有する端末を使用でき、ここでは、12tc2=異なるtc(端末機能)を備える12型として表現される。端末2は、カード1との通信リンク3の再接続を実現するための準備として、応答ファイルARPCを保存するメモリを有する。   In this embodiment, the system includes a mobile communication device 4, a terminal 2 having an NFC reader, a payment processor server 5, and a connection between the terminal 2 and the payment processor server 5. The mobile communication device 4 is represented by, for example, a Nokia 6131 mobile phone. A removable card 1 having a microSD type memory is inserted into a slot of the mobile communication device 4. The settlement card 1 and the NFC communication element 7 are arranged on a detachable card 1 having a memory having a general standard size. The card 1 is provided with a memory for storing a settlement file, the memory being in the form of a safety element, each in the form of a real area of the safety element. The ARQC payment file is saved even after the card 1 is reset. Card 1 is reset by reconnecting card 1 to terminal 2 after interrupting communication link 3 between card 1 and terminal 2 in the first phase of the transaction. The terminal 2 is provided with a memory for temporarily storing an ARPC format response file. Terminal 2 has a variable identifier prefix and is adjusted to change the identifier data after the response file is received. In the first phase, the terminal 2 is registered as a 12-type terminal 2 (POS terminal 2 on the seller side), and in the second phase, a 12tc2-type terminal 2 or, if possible, a 27-type terminal 2 (Post_Process_Terminal) ). The change in terminal type is useful for correctly matching communication messages and can in principle be the new model number of a 27-type terminal, for example. In addition, when it is a problem to introduce a new terminal model number into an existing processing system, terminals having the same model number 12 and different terminal functions can be used. Here, 12tc2 = different tc (terminal function) is provided. Expressed as type 12. The terminal 2 has a memory for storing a response file ARPC as preparation for realizing reconnection of the communication link 3 with the card 1.

数量、通貨および日付を含み、必要とされる決済に関するデータが、端末2で準備される。これらは、CDOL1データ(カードリスク管理データ対象リスト)に含まれる。ユーザーは、端末2リーダに携帯電話を近づける。通信リンク3が生成された後に、端末2は、カード1にステートメントを要求する。受信データに基づいて、カード1は、ARQC暗号化形式で決済ファイルを作成する。このファイルは、カード1の電子署名によって暗号化される。以前に作成された通信リンク3の間、決済ファイルARQCは、端末2に転送される。ARQC決済ファイルは、作成された後、カード1の安全素子に保存される。端末2にARQC決済ファイルを転送した後、携帯電話が端末2リーダから離れるかどうかは基本的に問題にならない。携帯電話は、全決済取引時に、ユーザーの手に保持されることから、電話は離れていると考えられる。携帯電話は、端末2の要求時に、または実際に決済取引全体を監視する販売者が依頼した際に、端末2リーダの近傍に配置される。第1の配置後、ユーザーは別のところに配置する依頼を待つ。1つの決済取引が進行中の場合は、カード1と端末2との間の通信リンク3は切断される。   Data relating to the required settlement, including quantity, currency and date, is prepared at the terminal 2. These are included in the CDOL1 data (card risk management data target list). The user brings the mobile phone close to the terminal 2 reader. After the communication link 3 is created, the terminal 2 requests a statement from the card 1. Based on the received data, the card 1 creates a payment file in the ARQC encryption format. This file is encrypted by the electronic signature of the card 1. During the previously created communication link 3, the payment file ARQC is transferred to the terminal 2. After the ARQC payment file is created, it is stored in the safety element of the card 1. Whether or not the mobile phone leaves the terminal 2 reader after transferring the ARQC payment file to the terminal 2 is basically not a problem. Since the mobile phone is held in the user's hand during all payment transactions, the phone is considered to be separated. The mobile phone is placed in the vicinity of the terminal 2 reader when requested by the terminal 2 or when requested by a seller who actually monitors the entire settlement transaction. After the first placement, the user waits for a request to place elsewhere. When one settlement transaction is in progress, the communication link 3 between the card 1 and the terminal 2 is disconnected.

その間、ARQC決済ファイルは、端末2から決済プロセッサ5に送信される。決済プロセッサは、このファイルを処理し、評価し、考えうる他の指示とともにARQC決済ファイルを、ARPC暗号形式の応答ファイルに暗号化する。このファイルは、ARQC決済ファイルに関する暗号化データを含む。ARPC応答ファイルは、カード1と端末2との間の元の通信リンク3が中断された後に、カード1によって決済プロセッサ5から受信される。この中断は、決済取引処理の第1フェーズと第2フェーズとを分ける瞬間の時間要素を含む。カード1の視点から、これらの2つのフェーズは、カード1のリセットによって分けられ、第1フェーズでカードに生成されたデータは第2フェーズで使用される。   Meanwhile, the ARQC payment file is transmitted from the terminal 2 to the payment processor 5. The payment processor processes and evaluates this file and encrypts the ARQC payment file into a response file in ARPC encryption format along with other possible instructions. This file contains encrypted data relating to the ARQC payment file. The ARPC response file is received from the payment processor 5 by the card 1 after the original communication link 3 between the card 1 and the terminal 2 is interrupted. This interruption includes an instantaneous time element that separates the first and second phases of the settlement transaction process. From the card 1 perspective, these two phases are separated by a reset of the card 1 and the data generated on the card in the first phase is used in the second phase.

ARQC決済ファイルは、少なくとも、決済プロセッサ5からの特定のARPC応答ファイルが受信、処理されるまで、カード1のメモリに保存される。カード1は、受信したARPC応答ファイルを復号し、ARPC応答ファイルの作成時に決済プロセッサ5によって使用されたARQC決済ファイルに関する情報を取得する。次にカード1は、以前に生成され、保存されているARQC決済ファイルと、ARPC応答ファイルに含まれるARQC決済ファイルとを比較する。この比較後に、カード1は、処理中の決済に関するステートメントを決定することができる。次に、カード1は、承諾または拒否のステートメントをTC形式またはAAC形式で作成する。以前に作成され、カード1に保存されているARQC決済ファイルが、ARPC応答ファイルに含まれるARQC決済ファイルと同じであるという必要条件下で、承諾のステートメントが、カード1に生成される。   The ARQC payment file is stored in the memory of the card 1 until at least a specific ARPC response file from the payment processor 5 is received and processed. The card 1 decrypts the received ARPC response file and acquires information on the ARQC payment file used by the payment processor 5 when the ARPC response file is created. Next, the card 1 compares the previously generated and stored ARQC payment file with the ARQC payment file included in the ARPC response file. After this comparison, card 1 can determine a statement regarding the settlement being processed. Next, the card 1 creates an acceptance or rejection statement in TC format or AAC format. An acceptance statement is generated on card 1 under the requirement that the ARQC payment file previously created and stored on card 1 is the same as the ARQC payment file included in the ARPC response file.

また、本実施例に記載する接続は、ARPC応答ファイルをカード1に転送する方法のさらに多くの可能性をもたらす。端末2は、ユーザーが2回目に携帯電話を端末2のリーダの近傍に配置しなかったことを決済プロセッサ5に報告する場合、決済プロセッサ5は、この特定の決済カード1に割り当てられた電話番号にSMSデータとしてARPCの送信を試行する。携帯電話では、受信したSMSは、挿入されたmicroSD型カードに関連するデータとして分析され、それの汎用POS端末であり、基本的に仮想のPOS端末2の起動を初期化する。SMSメッセージは、プレフィックス17を有する決済プロセッサ5に属する端末2(決済プロセッサ5に属する後処理端末2)に関する情報を含む。   In addition, the connection described in this embodiment provides more possibilities for how to transfer the ARPC response file to the card 1. If the terminal 2 reports to the payment processor 5 that the user has not placed the mobile phone in the vicinity of the reader of the terminal 2 for the second time, the payment processor 5 will call the telephone number assigned to this particular payment card 1 Attempts to send ARPC as SMS data. In the mobile phone, the received SMS is analyzed as data related to the inserted microSD card, and is a general-purpose POS terminal of the SMS. Basically, the activation of the virtual POS terminal 2 is initialized. The SMS message includes information regarding the terminal 2 belonging to the payment processor 5 having the prefix 17 (the post-processing terminal 2 belonging to the payment processor 5).

オンライン決済取引の処理は、前処理および後処理の2つのステップで実現される。決済アプリケーションとしては、たとえばPAYPASSおよびPAYWAVE仕様を実現する非接触型アプリケーションを使用することが可能できる。カード1には、PAYPASS/PAYWAVEおよびPAYPASS/PAYWAVE_POSTPROCESSの2つの別個のアプリケーションが存在する。アプリケーションは、セキュアドメインに配置され、EMVとの互換性があり、少なくとも3つの共通変数(データ項目)、オフラインカウンタ、アプリケーション取引カウンタ(ATC)、ラストオンラインアプリケーション取引カウンタ(LATC)を共有する。アプリケーションPAYPASS/PAYWAVEは、ARQC値を一時的に保存し、この値は、後にPOSTPROCESSで、PAYPASS/PAYWAVE_POSTPROCESSアプリケーションに提供されることから、この値を再度カウントする必要はなく、これにより、時間が節約される。本発明により、新型の端末2、つまりTerminal_type=27(POST PROCESS TERMINAL 2)が導入される。   The online payment transaction processing is realized in two steps: pre-processing and post-processing. As the payment application, for example, a contactless application that realizes the PAYPASS and PAYWAVE specifications can be used. Card 1 has two separate applications, PAYPASS / PAYWAVE and PAYPASS / PAYWAVE_POSTPROCESS. Applications are located in a secure domain, are compatible with EMV, and share at least three common variables (data items), an offline counter, an application transaction counter (ATC), and a last online application transaction counter (LATC). The application PAYPASS / PAYWAVE temporarily stores the ARQC value, which is later provided in the POSTPROCESS to the PAYPASS / PAYWAVE_POSTPROCESS application, so it is not necessary to recount this value, thereby saving time. Is done. According to the present invention, a new type of terminal 2, namely Terminal_type = 27 (POST PROCESS TERMINAL 2), is introduced.

提示する解決法は、携帯電話を端末2の近傍に2回配置することを可能にする。1回目では、オンライン承認の要求が生成され、2回目の接触後に、決済プロセッサ5からの情報が、決済アプリケーションに入力される。ユーザーが、2回目に携帯電話を配置せず、応答中に関連データまたはスクリプトが存在する場合、端末2は、応答が配信されなかったことを決済プロセッサ5に報告し、決済プロセッサ5は、SMS RESPONSEサービスが起動されていれば、SMSによって携帯電話に応答を配信しようと再試行する。ユーザーにこのサービスがある場合、一度のみユーザー自らが、手続きに従って端末2のリーダの近傍に携帯電話を配置することができる。GUIがSMS REPORTが有効になったことをSMSにより決済プロセッサ5に報告する場合に、GUIを最初に起動すると、このサービスが開始される。   The presented solution makes it possible to place the mobile phone in the vicinity of the terminal 2 twice. In the first time, a request for online approval is generated, and after the second contact, information from the payment processor 5 is input to the payment application. If the user does not place the mobile phone for the second time and there is relevant data or script in the response, the terminal 2 reports to the payment processor 5 that the response was not delivered, and the payment processor 5 If the RESPONSE service has been activated, it will retry to deliver the response to the mobile phone via SMS. When the user has this service, the user himself / herself can place a mobile phone near the reader of the terminal 2 according to the procedure. This service is started when the GUI is first activated when the GUI reports to the settlement processor 5 by SMS that the SMS REPORT has been enabled.

決済プロセッサ5が、SMS RESOPONSE送信後、3回連続のオンライン決済で受信確認を受信しない場合、サービスは自動的に無効となる。クライアントは、オンラインで3回連続して決済し、および/または、GUIを起動していなかったか、あるいは、携帯電話がそのようなサービスをサポートしない型に変更された。クライアントは、停止した後に、GUI上でサービスを再起動するか、あるいは、決済取引処理のツータッチメソッドを使用する必要があることを示すSMSを受信する。   If the payment processor 5 does not receive an acknowledgment in three consecutive online payments after sending SMS RESOPONSE, the service is automatically disabled. The client settled online three times in succession and / or did not activate the GUI, or was changed to a type in which the mobile phone does not support such services. After stopping, the client receives an SMS indicating that it needs to restart the service on the GUI or use the two-touch method of payment transaction processing.

また、本実施例では、前処理は、カード1を1回目の配置した時に実現される一般的なオンラインの非接触型動作、本願明細書では端末2に対する携帯電話の非接触型動作を表す。前処理時に、端末2は、端末自体をたとえばTerminal_type=12として表示する(販売者側にあるPOS端末2)。端末2は、決済プロセッサ5(決済カード1を発行した銀行の承認サーバ)にオンライン承認の要求を送信する。前処理の結果は、他のものを除いて決済プロセッサからの応答コードとスクリプトである。   In the present embodiment, the pre-processing represents a general online non-contact type operation realized when the card 1 is arranged for the first time, and a non-contact type operation of the mobile phone with respect to the terminal 2 in this specification. During pre-processing, the terminal 2 displays the terminal itself, for example, as Terminal_type = 12 (POS terminal 2 on the seller side). The terminal 2 transmits an online approval request to the payment processor 5 (the approval server of the bank that issued the payment card 1). The result of the preprocessing is the response code and script from the payment processor, except for others.

ユーザーは、携帯電話でGUI決済アプリケーションを開始する。アプリケーションは、パスワードを要求する。パスワードが適合すれば、EMBEDDED POS TERMINALは、パスワードを使用してPINコードを取得する。PINコードは、安全素子内の別個のアプリケーションに保存される。EMBEDDED POS TERMINALは、PAYPASS/PAYWAVEアプリケーションでPINを照合し、有効である場合に、取引時に、外部のPOS端末2のPIN入力装置(PED)でPINによる照合をほかに必要としないように、決済アプリケーションを構成する。PIN OVER PASSWORDプラットフォーム技術は、この構成によって定義される。ユーザーが決済アプリケーションを開始し、パスワードを入力せず、端末2がPIN照合を必要とする場合、PEDにPINを入力するか、あるいは、FOB(外部データ媒体)をリーダの近傍に配置して、照合のためにPINを決済プロセッサ5に送信することが必要である。電話がGUI決済アプリケーションを搭載せず、端末2がPIN照合を必要とする場合、この照合は、決済プロセッサ5においてオンラインで実行される。   The user starts a GUI payment application on the mobile phone. The application asks for a password. If the password matches, EMBEDDED POS TERMINAL uses the password to obtain a PIN code. The PIN code is stored in a separate application within the safety element. EMBEDDED POS TERMINAL verifies the PIN in the PAYPASS / PAYWAVE application, and if it is valid, settles so that no other PIN verification is required at the PIN input device (PED) of the external POS terminal 2 during the transaction. Configure the application. The PIN OVER PASSWORD platform technology is defined by this configuration. If the user starts a payment application, does not enter a password, and the terminal 2 requires PIN verification, enter the PIN in the PED or place an FOB (external data medium) near the reader, It is necessary to send the PIN to the payment processor 5 for verification. If the phone does not have a GUI payment application and the terminal 2 requires a PIN verification, this verification is performed online in the payment processor 5.

端末2は、カードリスク管理データ対象リスト(CDOL1)と第1のGENERATE ACコマンドをカード1に送信する。カード1は、ARQCを計算する。端末2のリスク管理がPINを要求し、GUIからパスワードが入力されなかった場合、端末2は、PIN入力装置(PED)にPINを入力するように要求し、このステップでは、オンラインでPINを照合する。端末2は、オンライン承認の要求として、計算されたARQC暗号文を決済プロセッサ5に送信する。決済プロセッサ5は、応答コードおよびスクリプトを補完する応答(ARPC暗号文)を返信する。   The terminal 2 transmits the card risk management data target list (CDOL1) and the first GENERATE AC command to the card 1. Card 1 calculates ARQC. If the risk management of the terminal 2 requires a PIN and no password is entered from the GUI, the terminal 2 requests the PIN input device (PED) to enter the PIN, and in this step, the PIN is verified online. To do. The terminal 2 transmits the calculated ARQC ciphertext to the payment processor 5 as a request for online approval. The settlement processor 5 returns a response (ARPC ciphertext) that complements the response code and the script.

以下のように、2回目に端末2の近傍にカードを配置し、端末2が次の処理のためにカード1に応答コードおよびスクリプトを送信する際に、後処理を実行する。
1.端末2は、決済プロセッサからARPC暗号文を受信(前処理完了)後に、ユーザーにカード1、つまり携帯電話を端末の非接触型リーダの近傍に再び配置するように要求する。
2.カード1を配置した後に、端末2は、PAYPASS/PAYWAVE_POSTPROCESSを開始し、Terminal_type=12ではなく、Terminal_type=27(販売者側にある後処理端末)として、端末自体をそれぞれTerminal_type=12 tc2として表示する。
3.カードは、この型の(ツータッチ取引処理中の)端末を認識し、第2のGENERATE ACを計算するために端末2にCDOL2データを要求する。
4.端末2からのCDOL2は、他のデータに加えて決済プロセッサからの応答コードを含む必要がある。
5.端末2は、カード1にスクリプトを送信する。
6.計算時には、前処理時に一時的に保存したARQCが使用される。
7.カードは、計算したTC/AACを端末2に送信する。 As described below, a card is placed in the vicinity of the terminal 2 for the second time, and post-processing is executed when the terminal 2 transmits a response code and a script to the card 1 for the next processing.
1. After receiving the ARPC ciphertext from the payment processor (completion of preprocessing), the terminal 2 requests the user to place the card 1, that is, the mobile phone again in the vicinity of the contactless reader of the terminal.
2. After placing the card 1, the terminal 2 starts PAYPASS / PAYWAVE_POSTPROCESS, and displays the terminal itself as Terminal_type = 12 tc2 as Terminal_type = 27 (post-processing terminal on the seller side) instead of Terminal_type = 12. .
3. The card recognizes this type of terminal (in the process of a two-touch transaction) and requests CDOL2 data from terminal 2 to calculate a second GENERATE AC.
4). The CDOL 2 from the terminal 2 needs to include a response code from the payment processor in addition to other data.
5. The terminal 2 transmits a script to the card 1.
6). At the time of calculation, ARQC temporarily stored at the time of preprocessing is used.
7). The card transmits the calculated TC / AAC to the terminal 2.

ユーザーは、携帯電話、移動通信装置4をリーダに対して2回目に配置しない場合、端末は、メッセージ配信に失敗したことを決済プロセッサ5に報告する。決済プロセッサは、SDカード1が挿入されている電話番号にSMSデータとしてARPCの送信を試行する。(プロセッサ5は、GUIから起動されているSMSからのSMS Response起動時に、この番号を得て、記憶する。)プッシュSMS技術は、受信SMSを記録し、SDカードの関連データに関係することを検知した後に、GENERIC POS TERMINALを実行する。また、SMSデータは、他の情報以外に、Terminal_type=17(金融機関に属する後処理端末2)に関する情報を含む必要がある。GENERIC POS TERMINALは、安全素子におけるデフォルト端末に関する構成データを読み込む。(端末2は、決済プロセッサ5または決済プロセッサ5と協働する決済プロセッサに属する。)次に、EMBEDDED POS TERMINALは、PAYPASS/PAYWAVE_POSTPROCESSを開始して、端末自体をTerminal_type=17として表示する。カード1は、このような型の(ツータッチ取引処理プラットフォームの)端末を認識し、第2のGENERATE ACを計算するために端末2にCDOL2データ(ARPCを含む)を要求する。端末2は、カード1にスクリプトを送信する。前処理時に、一時的に保存したARQCが、後の計算に使用される。カード1は、応答として計算されたTC/AACを端末2に送信する。端末2は、応答を暗号化し、GUIが応答を取り出して、決済プロセッサ5のHOSTに応答として送信するメモリに保存する一方で、受信SMS RESPONSEから電話番号を認識する。   If the user does not place the mobile phone or mobile communication device 4 for the reader for the second time, the terminal reports to the payment processor 5 that the message delivery has failed. The payment processor tries to transmit ARPC as SMS data to the telephone number in which the SD card 1 is inserted. (The processor 5 obtains and stores this number when the SMS Response is activated from the SMS activated from the GUI.) Push SMS technology records the received SMS and relates to the relevant data on the SD card. After detection, GENERIC POS TERMINAL is executed. Further, the SMS data needs to include information regarding Terminal_type = 17 (post-processing terminal 2 belonging to a financial institution) in addition to other information. GENERIC POS TERMINAL reads configuration data regarding the default terminal in the safety element. (The terminal 2 belongs to the payment processor 5 or a payment processor cooperating with the payment processor 5.) Next, the EMBEDDED POS TERMINAL starts PAYPASS / PAYWAVE_POSTPROCESS and displays the terminal itself as Terminal_type = 17. Card 1 recognizes this type of terminal (of a two-touch transaction processing platform) and requests CDOL2 data (including ARPC) from terminal 2 to calculate a second GENERATE AC. The terminal 2 transmits a script to the card 1. During preprocessing, the temporarily stored ARQC is used for subsequent calculations. The card 1 transmits the TC / AAC calculated as a response to the terminal 2. The terminal 2 encrypts the response, and the GUI retrieves the response and stores it in a memory that is transmitted as a response to the HOST of the payment processor 5 while recognizing the telephone number from the received SMS RESPONSE.

カード1は、決済プロセッサ5からARPCを受信する場合、他の「n」(無制限)回のオフライン決済の実現を可能にするLATCを設定するが、SMS Responseまたは第2の接触のいずれによるかは重要でない。ユーザーがツータッチプラットフォームで2回目の接触を拒否する場合、および、または、SMS Responseが起動していない場合のいずれかの場合、ユーザーはオフライン決済を実現することができない。しかし、ユーザーは、決済プロセッサ5でオンライン承認によってのみ決済することができる。決済プロセッサ5からARPC(応答)を正しく受信した後に、オフライン取引は許可される。そこで、ユーザーのカードにオフラインの金銭が十分にあるという条件下では、回数を限定することなく決済できるようになる。   When the card 1 receives an ARPC from the payment processor 5, the card 1 sets a LATC that enables another “n” (unlimited) number of offline payments, either by SMS Response or the second contact. Not important. If the user refuses the second contact on the two-touch platform and / or if the SMS Response is not activated, the user cannot achieve offline payment. However, the user can make a payment only by online approval in the payment processor 5. After correctly receiving the ARPC (response) from the payment processor 5, offline transactions are permitted. Therefore, under the condition that the user's card has sufficient offline money, it becomes possible to settle without limiting the number of times.

産業上の利用可能性は、明白である。本発明により、カードと端末との間の通信リンクの中断を可能にする決済取引を2つのフェーズに分ける電子決済アプリケーションシステムを作製して、使用することが可能である。   Industrial applicability is obvious. According to the present invention, it is possible to create and use an electronic payment application system that divides a payment transaction that enables interruption of a communication link between a card and a terminal into two phases.

1 カード
2 決済端末
3 通信リンク
4 移動通信装置
5 決済プロセッサ
6 通信経路
7 通信素子
POS 販売時点管理
AAC アプリケーション認証暗号文
ARQC 承認要求暗号
ARPC 承認応答暗号
CDOL カードリスク管理データ対象リスト
TC 取引証明
POS12 販売者側にある販売時点管理
POS12tc2 後処理で販売者側にあり、異なる端末機能を有する販売時点管理
EMV Europay、MasterCard、VISA 1 card 2 payment terminal 3 communication link 4 mobile communication device 5 payment processor 6 communication path 7 communication element POS point of sale management AAC application authentication ciphertext ARQC approval request encryption ARPC approval response encryption CDOL card risk management data target list TC transaction certification POS12 sales Point-of-sale management at the seller side POS12tc2 Point-of-sale point-of-sale management with different terminal functions at the seller side in post-processing

Claims (12)

非接触型決済手段を使用し、ARQC形式の決済ファイルは、カード(1)によって作成され、前記カード(1)の第1のリセット後、決済端末(2)から受信する決済データを使用して、前記カード(1)で電子署名されて前記カード(1)に保存されると共に、前記電子署名された決済ファイルは、前記カード(1)の前記決済端末(2)とのリンクによって前記決済端末(2)を経て決済プロセッサ(5)に送信され、
前記決済端末(2)に前記電子署名された決済ファイルを送信した後で、前記カード(1)と前記決済端末(2)とのリンク切断された後、
次に、前記カード(1)と前記決済端末(2)とのリンクの再接続で前記カード(1)の第2のリセットが行われ、前記第2のリセットの前後で第1フェーズと第2フェーズに分けられる構成であって、前記第2フェーズにおいて、
前記カード(1)は、前記決済プロセッサ(5)から、前記決済プロセッサ(5)が生成した前記決済ファイルに関するデータを含む暗号化されたARPC形式の応答ファイルを受信し、前記カード(1)は、受信した前記応答ファイルを復号して、前記応答ファイルを生成するために使用された前記決済ファイルに関する情報を取得し、次に、前記カード(1)は、第1フェーズで保存された決済ファイルと、前記応答ファイルに含まれる決済ファイルとを比較した結果に基づいて承諾または拒否のステートメントを作成する
ことを特徴とする電子決済取引の方法。 Using the contactless payment means, the payment file in ARQC format is created by the card (1) and uses the payment data received from the payment terminal (2) after the first reset of the card (1). The card (1) is electronically signed and stored in the card (1), and the electronically signed payment file is linked to the payment terminal (2) of the card (1) through the payment terminal (2). Sent to the payment processor (5) via (2),
After sending the electronically signed payment file to the payment terminal (2), after the link between the card (1) and the payment terminal (2) is disconnected ,
Next, a second reset of the card (1) is performed by reconnecting the link between the card (1) and the payment terminal (2), and before and after the second reset, The configuration is divided into phases, and in the second phase,
The card (1) from the payment processor (5) receives the response file of the encrypted ARPC format containing data about the payment files the payment processor (5) is generated, the card (1) The received response file is decrypted to obtain information about the payment file used to generate the response file, and then the card (1) stores the payment file stored in the first phase. And a statement of acceptance or refusal based on a result of comparing the settlement file included in the response file with an electronic settlement transaction method. 前記決済に対する前記承諾のステートメントは、以前に作成されかつ前記カード(1)に保存されている決済ファイルが、前記応答ファイル内の前記決済ファイルと同じであるという必要条件下において前記カード(1)で生成されることを特徴とする請求項に記載の電子決済取引の方法。 The statement of acceptance for the payment is that the card (1) is subject to the requirement that the payment file previously created and stored on the card (1) is the same as the payment file in the response file. The electronic payment transaction method according to claim 1 , wherein the electronic payment transaction method is generated by: 前記応答ファイルを受信した後に、前記端末(2)は、前記カード(1)と前記端末(2)との間の前記通信リンク(3)の修復を必要とし、前記カード(1)と前記端末(2)との間の前記通信リンク(3)が復元された後に、前記カード(2)は、前記決済プロセッサ(5)からの応答によって補足された決済データを再送するように前記端末(2)に要求することを特徴とする請求項1又は2に記載の電子決済取引の方法。 After receiving the response file, the terminal (2) needs to repair the communication link (3) between the card (1) and the terminal (2), and the card (1) and the terminal After the communication link (3) with (2) is restored, the card (2) retransmits the payment data supplemented by the response from the payment processor (5) to the terminal (2 3) The electronic settlement transaction method according to claim 1 or 2 . 前記カード(1)は、移動通信装置(4)用の着脱可能なメモリカード、好ましくはmicroSD型、miniSD型またはSD型のメモリに含まれることを特徴とする請求項1〜3のいずれか1項に記載の電子決済取引の方法。 The card (1) is a removable memory card for mobile communication device (4), preferably microSD type, either of claims 1-3, characterized in that included in the miniSD type or SD type memory 1 The method of electronic payment transaction according to item . 前記応答ファイルの転送のための通信経路(6)は、前記カード(1)と前記端末(2)との間の前記決済ファイル転送に使用される通信経路(3)と異なることを特徴とする請求項1〜4のいずれか1項に記載の電子決済取引の方法。 The communication path (6) for transferring the response file is different from the communication path (3) used for transferring the settlement file between the card (1) and the terminal (2). The method of the electronic payment transaction of any one of Claims 1-4 . 前記決済プロセッサ(5)から応答ファイルを受信した後に、前記第2フェーズの前記端末(2)が、前記第1フェーズにおける識別子とは異なる識別子に変更されることを特徴とする請求項1〜5のいずれか1項に記載の電子決済取引の方法。 After receiving the response file from the settlement processor (5), according to claim 5 wherein the second phase the terminal (2), characterized in that to change to a different identifier than the identifier in the first phase The electronic payment transaction method according to any one of the above. 前記端末(2)は、前記カード(1)との前記通信リンク(3)を修復するための準備において、前記応答ファイルを保存することを特徴とする請求項に記載の電子決済取引の方法。 7. The method of electronic payment transaction according to claim 6 , wherein the terminal (2) stores the response file in preparation for repairing the communication link (3) with the card (1). . 移動通信網が、前記応答ファイルを送信するのに使用され、前記応答ファイルは、SMS形式でメッセージを受信する移動通信装置(4)を介して前記カード(1)によって受信されることを特徴とする請求項1〜7のいずれか1項に記載の電子決済取引の方法。 A mobile communication network is used to send the response file, the response file being received by the card (1) via a mobile communication device (4) that receives messages in SMS format. The electronic settlement transaction method according to any one of claims 1 to 7 . 非接触型決済手段を使用し、移動通信装置(4)内の決済カード(1)と、端末(2)と、端末(2)と決済プロセッサ(5)との間の接続とを含み、請求項1に記載の電子決済取引方法を行う電子決済取引のシステムであって、
前記決済カード(1)は、決済ファイルを保存するメモリを含み、前記決済ファイルは、前記カード(1)と前記端末(2)との通信リンク(3)の中断した後に続く前記カード(1)の前記第2のリセット後も前記メモリに保存され、前記端末(2)は、ARPC形式の前記応答ファイルの一時記憶用メモリを含み、前記端末(2)は、前記応答ファイルの受信後、登録識別子データが変更されることを特徴とする電子決済取引のシステム。 Using a contactless payment means, including a payment card (1) in the mobile communication device (4), a terminal (2), and a connection between the terminal (2) and the payment processor (5), An electronic payment transaction system that performs the electronic payment transaction method according to Item 1,
The payment card (1) includes a memory for storing a payment file, and the payment file continues after the communication link (3) between the card (1) and the terminal (2) is interrupted. Is stored in the memory even after the second reset, and the terminal (2) includes a memory for temporarily storing the response file in ARPC format, and the terminal (2) is registered after receiving the response file. An electronic payment transaction system characterized in that identifier data is changed. 前記決済ファイルの保存するための前記カード(1)のメモリは、安全素子であることを特徴とする請求項に記載の電子決済取引のシステム。 10. The system for electronic payment transaction according to claim 9 , wherein the memory of the card (1) for storing the payment file is a safety element. 前記決済カード(1)は、前記移動通信装置(4)の着脱可能なメモリカード、好ましくはmicroSD型、miniSD型またはSD型のメモリに含まれることを特徴とする請求項9又は10に記載の電子決済取引のシステム。 The payment card (1), said mobile communication device (4) removable memory card, preferably according to claim 9 or 10, characterized in that included in microSD type, miniSD type or SD type memory Electronic payment transaction system. 前記決済カード(1)は、前記端末(2)との通信のための非接触型通信素子(7)を含むことを特徴とする請求項9〜11のいずれか1項に記載の電子決済取引のシステム。 The electronic payment transaction according to any one of claims 9 to 11 , wherein the payment card (1) includes a contactless communication element (7) for communication with the terminal (2). System.
JP2012506628A 2009-04-24 2010-04-23 Method and system for electronic payment transaction, particularly electronic payment transaction using contactless payment means Expired - Fee Related JP5994996B2 (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
SKPP50024-2009 2009-04-24
SK50024-2009A SK288747B6 (en) 2009-04-24 2009-04-24 Method and system for cashless payment transactions, particularly with contactless payment device using
PCT/IB2010/051779 WO2010122520A2 (en) 2009-04-24 2010-04-23 Method and system of electronic payment transaction, in particular by using contactless payment means

Publications (2)

Publication Number Publication Date
JP2012524927A JP2012524927A (en) 2012-10-18
JP5994996B2 true JP5994996B2 (en) 2016-09-21

Family

ID=43011542

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2012506628A Expired - Fee Related JP5994996B2 (en) 2009-04-24 2010-04-23 Method and system for electronic payment transaction, particularly electronic payment transaction using contactless payment means

Country Status (13)

Country Link
US (1) US8500008B2 (en)
EP (1) EP2449512A2 (en)
JP (1) JP5994996B2 (en)
KR (1) KR101709099B1 (en)
CN (1) CN102640176B (en)
AU (1) AU2010240543B2 (en)
BR (1) BRPI1014882B1 (en)
CA (1) CA2739809C (en)
MX (1) MX2011004338A (en)
RU (1) RU2543938C2 (en)
SK (1) SK288747B6 (en)
WO (1) WO2010122520A2 (en)
ZA (1) ZA201108238B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2020197783A1 (en) * 2019-03-25 2020-10-01 Capital One Services, Llc Systems and methods for increased efficiency and reliability of contactless card transactions

Families Citing this family (34)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9047601B2 (en) * 2006-09-24 2015-06-02 RFCyber Corpration Method and apparatus for settling payments using mobile devices
EP2329563A2 (en) 2008-08-29 2011-06-08 Logomotion, s.r.o. Removable card for a contactless communication, its utilization and the method of production
US9098845B2 (en) 2008-09-19 2015-08-04 Logomotion, S.R.O. Process of selling in electronic shop accessible from the mobile communication device
SK288641B6 (en) 2008-10-15 2019-02-04 Smk Corporation Communication method with POS terminal and frequency convertor for POS terminal
KR101789113B1 (en) 2009-05-03 2017-10-23 에스에무케이 가부시키가이샤 A payment terminal using a mobile communication device, such as a mobile phone;a method of direct debit payment transaction
US8955747B2 (en) * 2009-06-23 2015-02-17 At&T Mobility Ii Llc Devices, systems and methods for wireless point-of-sale
US9189786B2 (en) * 2010-03-31 2015-11-17 Mastercard International Incorporated Systems and methods for operating transaction terminals
US20120136796A1 (en) 2010-09-21 2012-05-31 Ayman Hammad Device Enrollment System and Method
US10147077B2 (en) * 2010-09-21 2018-12-04 Mastercard International Incorporated Financial transaction method and system having an update mechanism
GB2484717B (en) * 2010-10-21 2018-06-13 Advanced Risc Mach Ltd Security provision for a subject image displayed in a non-secure domain
CN103201758A (en) 2010-11-10 2013-07-10 斯玛特哈伯私人有限公司 Method of performing a financial transaction via unsecured public telecommunication infrastructure and an apparatus for same
US20130179352A1 (en) * 2011-03-12 2013-07-11 Mocapay, Inc. Secure wireless transactions when a wireless network is unavailable
US8744974B2 (en) 2011-03-12 2014-06-03 Mocapay, Inc. Systems and methods for secure wireless payment transactions when a wireless network is unavailable
US20120310756A1 (en) * 2011-06-06 2012-12-06 Sarvatra Technologies Pvt Ltd. System and method for displaying user's signature on pos terminals
US11049110B2 (en) * 2011-06-17 2021-06-29 Zelis Payments, Llc Healthcare transaction facilitation platform apparatuses, methods and systems
CN102880958B (en) * 2011-07-13 2016-08-10 中国银联股份有限公司 Data process and storage device
US9524499B2 (en) 2011-09-28 2016-12-20 Paypal, Inc. Systems, methods, and computer program products providing electronic communication during transactions
US20130138517A1 (en) * 2011-11-30 2013-05-30 Infosys Limited Method and system for integrating wireless devices with existing point of sale systems
CA2860987C (en) 2012-02-29 2015-11-24 Mobeewave, Inc. Method, device and secure element for conducting a secured financial transaction on a device
US9818091B2 (en) 2012-07-27 2017-11-14 Wal-Mart Stores, Inc. Barcode transferring receipt data to a computing device of a customer
US8783438B2 (en) 2012-11-30 2014-07-22 Heb Grocery Company, L.P. Diverter arm for retail checkstand and retail checkstands and methods incorporating same
CN105051758B (en) * 2013-03-26 2018-03-27 邵通 A kind of no-contact electronic wallet device and method of payment
GB2533333A (en) 2014-12-16 2016-06-22 Visa Europe Ltd Transaction authorisation
CN105590200A (en) * 2015-03-11 2016-05-18 中国银联股份有限公司 Data transmission method and user equipment for mobile near field payment
CN105590208A (en) 2015-03-24 2016-05-18 中国银联股份有限公司 Mobile terminal having offline transaction notification function and notification method
CN104933565B (en) * 2015-06-05 2019-04-05 中国银行股份有限公司 A kind of IC card transaction method and system
US20170103396A1 (en) * 2015-10-13 2017-04-13 Mastercard International Incorporated Adaptable messaging
US10073962B2 (en) 2016-04-01 2018-09-11 Visa International Service Association System and method employing reduced time device processing
TW201923645A (en) * 2017-10-23 2019-06-16 美商公證公司 System and method for automated online notarization meeting recovery
JP6403910B1 (en) * 2018-02-16 2018-10-10 株式会社コナミアミューズメント Service providing system and computer program used therefor
CN110060049A (en) * 2018-11-30 2019-07-26 阿里巴巴集团控股有限公司 Method of payment, device and equipment
EP3699847A1 (en) * 2019-02-22 2020-08-26 Mastercard International Incorporated Transaction system data management
US11687930B2 (en) * 2021-01-28 2023-06-27 Capital One Services, Llc Systems and methods for authentication of access tokens
US12166750B2 (en) 2022-02-08 2024-12-10 Capital One Services, Llc Systems and methods for secure access of storage

Family Cites Families (147)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0704928A3 (en) 1994-09-30 1998-08-05 HID Corporation RF transponder system with parallel resonant interrogation and series resonant response
US5574470A (en) 1994-09-30 1996-11-12 Palomar Technologies Corporation Radio frequency identification transponder apparatus and method
EA001415B1 (en) * 1995-08-21 2001-02-26 Корнель Сирбу Conditional access method and device
EP0831433A1 (en) * 1996-09-24 1998-03-25 Koninklijke KPN N.V. Method of making recoverable smart card transactions, a method of recovering such a transaction, as well as a smart card allowing recoverable transactions
EP0851396A1 (en) * 1996-12-23 1998-07-01 Koninklijke KPN N.V. System for increasing a value of an electronic payment card
US6450407B1 (en) * 1998-04-17 2002-09-17 Viztec, Inc. Chip card rebate system
FR2779896B1 (en) 1998-06-15 2000-10-13 Sfr Sa METHOD FOR REMOTE PAYING, BY MEANS OF A MOBILE RADIOTELEPHONE, THE ACQUISITION OF A GOOD AND / OR A SERVICE AND CORRESPONDING MOBILE RADIOTELEPHONE SYSTEM AND
FR2784483B1 (en) * 1998-10-13 2000-12-29 Innovatron Electronique METHOD FOR EXCHANGING DATA BETWEEN AN AUTOMATON AND A HANDHELD OBJECT, IN PARTICULAR A MICROCIRCUIT CARD, LIKELY TO BE DEBIT BY THE AUTOMATON IN REPLACEMENT OF THE DELIVERY OF GOODS OR SERVICES
JP2000187688A (en) * 1998-12-22 2000-07-04 Oki Electric Ind Co Ltd Value transfer system
US6615243B1 (en) * 1999-04-01 2003-09-02 Thomson Licensing S.A. System and method for programming and transmitting macros for controlling audio/video devices
US7461010B2 (en) * 1999-09-13 2008-12-02 Khai Hee Kwan Computer network method for conducting payment over a network by debiting and crediting telecommunication accounts
GB2357618A (en) * 1999-12-23 2001-06-27 Nokia Mobile Phones Ltd Transaction system
US7552094B2 (en) * 2000-03-16 2009-06-23 Harexinfotech, Inc. Optical payment transceiver and system using the same
JP5160003B2 (en) * 2000-05-10 2013-03-13 ソニー株式会社 Settlement management device, program, storage medium, management method, client device, processing method, and data storage device
KR20020012738A (en) 2000-08-08 2002-02-20 김재명 Function of defining user's of personal cellular phone
US20020038287A1 (en) * 2000-08-30 2002-03-28 Jean-Marc Villaret EMV card-based identification, authentication, and access control for remote access
US7103575B1 (en) * 2000-08-31 2006-09-05 International Business Machines Corporation Enabling use of smart cards by consumer devices for internet commerce
AU7680200A (en) * 2000-10-18 2002-04-29 Ultra Proizv Elektronskih Napr System for payment data exchange and payment terminal device used therein
US7318049B2 (en) * 2000-11-17 2008-01-08 Gregory Fx Iannacci System and method for an automated benefit recognition, acquisition, value exchange, and transaction settlement system using multivariable linear and nonlinear modeling
KR20020051696A (en) 2000-12-23 2002-06-29 구자홍 Method for establish macro of mobile keyboard out epuipment
JP2002251524A (en) * 2001-02-23 2002-09-06 Sony Corp Communication system, card, control server, communication method, program, and recording medium recorded with program
US20030055738A1 (en) * 2001-04-04 2003-03-20 Microcell I5 Inc. Method and system for effecting an electronic transaction
US20020163479A1 (en) 2001-05-04 2002-11-07 Wei-Kang Lin Printed radio frequency sensing cards and fabricating methods therefor
DE10130019A1 (en) 2001-06-25 2003-01-09 Scm Microsystems Gmbh Smart card reader is built into a computer mouse with controller to identify PIN number
WO2003012717A1 (en) 2001-07-30 2003-02-13 C-Sam, Inc. System for distribution and use of virtual stored value cards
US7197167B2 (en) * 2001-08-02 2007-03-27 Avante International Technology, Inc. Registration apparatus and method, as for voting
US6694045B2 (en) * 2002-01-23 2004-02-17 Amerasia International Technology, Inc. Generation and verification of a digitized signature
JP2003124429A (en) 2001-10-15 2003-04-25 Matsushita Electric Ind Co Ltd Module component
JP2003131808A (en) 2001-10-22 2003-05-09 Hideaki Sakamoto Structure of mouse equipped with bar code scanning device and its utilization
KR100420600B1 (en) * 2001-11-02 2004-03-02 에스케이 텔레콤주식회사 METHOD FOR PROCESSING EMV PAYMENT BY USING IrFM
HU224788B1 (en) * 2002-02-07 2006-02-28 Enigma Software Rt Architecture for arranging bank card transaction requiring simplified hardware in a large customer base, transaction terminal unit, sim card with extended function, as well as, method for personalizing and performing transactions
KR100412510B1 (en) * 2002-03-30 2004-01-07 한민규 An instant log-in method for authentificating a user and settling bills by using two different communication channels and a system thereof
GB2390509A (en) 2002-07-03 2004-01-07 Marconi Information Systems Lt Smart label reader interfacing device
US20040019564A1 (en) * 2002-07-26 2004-01-29 Scott Goldthwaite System and method for payment transaction authentication
KR20040012401A (en) 2002-08-03 2004-02-11 주식회사 어필텔레콤 Loop antenna of wireless phone
KR20020073106A (en) 2002-08-16 2002-09-19 스마트시스템 주식회사 Wireless Optical Mouse with Smart Card Reader and USB Token
US6842106B2 (en) * 2002-10-04 2005-01-11 Battelle Memorial Institute Challenged-based tag authentication model
KR100476157B1 (en) 2002-11-14 2005-03-11 (주)넥스지텔레콤 Smart Card Having Use Control Device
KR20040060249A (en) 2002-12-30 2004-07-06 엘지전자 주식회사 Synthesis System and Method of Credit Card Using Smart card and Mobile Phone
US7436965B2 (en) * 2003-02-19 2008-10-14 Microsoft Corporation Optical out-of-band key distribution
CN1450782A (en) 2003-04-14 2003-10-22 李洪斌 Mobile payment realization by bank credit card binding SIM card of mobile telephone set
KR20040089800A (en) 2003-04-15 2004-10-22 파워 데이터 커뮤니케이션즈 캄퍼니 리미티드 E-commerce system and method using a mobile phone with radio-transmission memory card
JP2004348235A (en) 2003-05-20 2004-12-09 Toshiba Corp Portable electronic device and portable terminal device
FR2856490B1 (en) * 2003-06-17 2005-10-07 Thales Sa METHOD OF WRITING, UPDATING AND MEMORY ALLOCATION APPLIED TO WRITING FILES TO MEMORY MEDIA SUCH AS A CHIP CARD
ZA200600938B (en) 2003-06-30 2007-04-25 Jha I Commerce Pty Ltd A method of and system for authenticating a transaction initiated from a non-internet enabled device
WO2005004069A1 (en) * 2003-07-02 2005-01-13 Mobipay International, S.A. Digital mobile telephone transaction and payment system
KR100998039B1 (en) * 2003-10-01 2010-12-03 삼성테크윈 주식회사 Substrate manufacturing method and smart label manufactured using the same
JP4539071B2 (en) * 2003-10-23 2010-09-08 ソニー株式会社 Portable wireless communication device.
US7597250B2 (en) * 2003-11-17 2009-10-06 Dpd Patent Trust Ltd. RFID reader with multiple interfaces
KR100566260B1 (en) 2003-11-27 2006-03-29 삼성전자주식회사 Mobile terminal combining radio frequency identification tag and smart card and wireless identification method in mobile terminal
US7407107B2 (en) 2003-12-08 2008-08-05 Nokia Corporation Apparatus, system, method and computer program product for creating shortcuts to functions in a personal communication device
US7357309B2 (en) * 2004-01-16 2008-04-15 Telefonaktiebolaget Lm Ericsson (Publ) EMV transactions in mobile terminals
JP4256293B2 (en) 2004-03-30 2009-04-22 ソフトバンクモバイル株式会社 IC card holder
WO2005119607A2 (en) 2004-06-03 2005-12-15 Tyfone, Inc. System and method for securing financial transactions
WO2005119608A1 (en) 2004-06-03 2005-12-15 Tyfone, Inc. System and method for securing financial transactions
JP2006033229A (en) 2004-07-14 2006-02-02 Nec Saitama Ltd Mobile communications apparatus and mobile call apparatus
JP2006048360A (en) * 2004-08-04 2006-02-16 Sanden Corp Non-contact ic chip reader/writer
US7689932B2 (en) 2004-12-28 2010-03-30 Nokia Corporation Maintenance of shortcut keys in a mobile device
KR20050008622A (en) 2004-12-31 2005-01-21 송정훈 Mobile phone including rf chip for advance payment
US20060146023A1 (en) * 2005-01-04 2006-07-06 Oren Kidron Mobile computer mouse
US7286019B2 (en) * 2005-01-07 2007-10-23 Texas Instruments Incorporated Method and system for amplifying a signal
US7581678B2 (en) * 2005-02-22 2009-09-01 Tyfone, Inc. Electronic transaction card
EP3291156B1 (en) * 2005-03-07 2018-12-26 Nokia Technologies Oy Method and mobile terminal device including smartcard module and near field communications means
US7386275B2 (en) 2005-03-11 2008-06-10 Dell Products Llp Systems and methods for managing out-of-band device connection
US20060226217A1 (en) * 2005-04-07 2006-10-12 Tyfone, Inc. Sleeve for electronic transaction card
GB0507285D0 (en) * 2005-04-11 2005-05-18 Innovision Res & Tech Plc Nfc enabled high-speed data
EP1729253B1 (en) 2005-05-12 2009-06-24 Swisscom AG Method and system for secure data transfer over an NFC-connection
US20060255160A1 (en) 2005-05-13 2006-11-16 Otto Winkler Memory card, the fabrication thereof and a mobile phone apparatus having a memory card
US7805615B2 (en) * 2005-07-15 2010-09-28 Tyfone, Inc. Asymmetric cryptography with user authentication
US8477940B2 (en) * 2005-07-15 2013-07-02 Tyfone, Inc. Symmetric cryptography with user authentication
US8189788B2 (en) 2005-07-15 2012-05-29 Tyfone, Inc. Hybrid symmetric/asymmetric cryptography with user authentication
US20070016957A1 (en) 2005-07-18 2007-01-18 Seaward Karen L Secure portable memory mouse device
TW200713076A (en) * 2005-07-18 2007-04-01 Tyfone Inc Electronic stripe cards
FR2889781B1 (en) 2005-08-12 2009-04-17 Initialesonline Sa AUTHENTICATION SERVER FOR DIGITAL IDENTITY
JP2007060076A (en) 2005-08-23 2007-03-08 Casio Hitachi Mobile Communications Co Ltd Mobile communication device
GB2432031B (en) 2005-08-30 2010-01-20 Wijetunge Harold Prianne Anura The process for cash transfer from one mobile phone to another with access to cash instantly
ZA200803372B (en) * 2005-09-28 2009-09-30 Visa Int Service Ass Device, system and method for reducing an interaction time for a contactless transaction
US7808480B2 (en) 2005-10-28 2010-10-05 Sap Ag Method and system for secure input
US20070106564A1 (en) * 2005-11-04 2007-05-10 Utiba Pte Ltd. Mobile phone as a point of sale (POS) device
US20070125840A1 (en) * 2005-12-06 2007-06-07 Boncle, Inc. Extended electronic wallet management
JP2007166379A (en) * 2005-12-15 2007-06-28 Fujitsu Ltd Loop antenna and electronic device equipped with the loop antenna
JP4715509B2 (en) * 2005-12-28 2011-07-06 富士通株式会社 Personal information certification method and personal information certification system
US7641111B2 (en) * 2005-12-29 2010-01-05 Research In Motion Limited Method and apparatus for contactless payment authentication
US7606574B2 (en) * 2006-01-12 2009-10-20 Motorola, Inc. Method and apparatus for implementing spatial division multiple access (“SDMA”) to communicate user data and backhaul data with the same wireless time-frequency resources
JP2007189612A (en) * 2006-01-16 2007-07-26 Nec Tokin Corp Rfid antenna
WO2007105469A1 (en) * 2006-03-10 2007-09-20 Matsushita Electric Industrial Co., Ltd. Card type information device and method for manufacturing same
KR100837039B1 (en) * 2006-03-14 2008-06-11 최명렬 How to process high speed contactless payments
US7873573B2 (en) * 2006-03-30 2011-01-18 Obopay, Inc. Virtual pooled account for mobile banking
US8249965B2 (en) * 2006-03-30 2012-08-21 Obopay, Inc. Member-supported mobile payment system
US20070235539A1 (en) * 2006-04-05 2007-10-11 Jarkko Sevanto Mobile device with near field communication module and secure chip
US8965281B2 (en) * 2006-04-05 2015-02-24 Nokia Corporation Mobile device with near field communication module and secure chip
CN1835007A (en) 2006-04-07 2006-09-20 浙江通普通信技术有限公司 Mobile payment method based on mobile communication network
US7500606B2 (en) * 2006-04-14 2009-03-10 Harexinfotech, Inc. Method of settling signatureless payment of bank card sales slip in mobile terminal, and system therefor
DE102007019272A1 (en) 2006-04-24 2007-10-25 Giesecke & Devrient Gmbh Antenna adapter for card-shaped data carrier, has flexibly designed antenna holder comprising antenna, and antenna connection holder that is formed to cooperate with flat side of data carrier
DE102006019628A1 (en) * 2006-04-25 2007-10-31 Eberhard Back Method and device for providing at least one piece of information to a mobile communication device of a user
JP2007304910A (en) 2006-05-12 2007-11-22 Daido Steel Co Ltd Magnetic sheet for radio communication medium
WO2008005102A2 (en) * 2006-05-13 2008-01-10 Sap Ag Consistent set of interfaces derived from a business object model
DE102006027200A1 (en) * 2006-06-12 2007-12-27 Giesecke & Devrient Gmbh Data carrier and method for contactless communication between the data carrier and a reading device
US7865141B2 (en) 2006-06-15 2011-01-04 Silicon Storage Technology, Inc. Chipset for mobile wallet system
US7775442B2 (en) * 2006-07-12 2010-08-17 Nokia Corporation Method for accessing after-operation information of secure element applications
FR2904453B1 (en) 2006-07-25 2009-01-16 Oberthur Card Syst Sa ELECTRONIC ANTENNA WITH MICROCIRCUIT.
CN101136123A (en) 2006-08-30 2008-03-05 黄金富 Smart card POS machine system and corresponding method for payment collecting and remitting at merchant stations
US8909553B2 (en) * 2006-09-06 2014-12-09 Transaction Wireless, Inc. Payment card terminal for mobile phones
WO2008034937A1 (en) * 2006-09-20 2008-03-27 Nokia Corporation Near field connection establishment
JP2008083867A (en) 2006-09-26 2008-04-10 Matsushita Electric Works Ltd Memory card socket
GB0621189D0 (en) * 2006-10-25 2006-12-06 Payfont Ltd Secure authentication and payment system
US7814013B2 (en) * 2006-12-19 2010-10-12 Morsillo Leon N Electronic payment processing system
CN100590989C (en) 2007-01-12 2010-02-17 上海复旦微电子股份有限公司 Near-field communication handset with multi-way switch interface and method of power supply and communication thereof
WO2008105703A1 (en) 2007-01-19 2008-09-04 Bjoerhn Anders Pos module
JP2008236135A (en) * 2007-03-19 2008-10-02 Toshiba Corp Frequency converter
US20080270246A1 (en) * 2007-04-26 2008-10-30 Grace Chen Global electronic payment system
SI22595A (en) 2007-07-23 2009-02-28 Halcom D.D. Procedure and system for safe and simple paying by way of mobile terminal
US20090063312A1 (en) * 2007-08-28 2009-03-05 Hurst Douglas J Method and System for Processing Secure Wireless Payment Transactions and for Providing a Virtual Terminal for Merchant Processing of Such Transactions
US9311766B2 (en) * 2007-09-12 2016-04-12 Devicefidelity, Inc. Wireless communicating radio frequency signals
US8070057B2 (en) * 2007-09-12 2011-12-06 Devicefidelity, Inc. Switching between internal and external antennas
US20090070691A1 (en) * 2007-09-12 2009-03-12 Devicefidelity, Inc. Presenting web pages through mobile host devices
US8915447B2 (en) * 2007-09-12 2014-12-23 Devicefidelity, Inc. Amplifying radio frequency signals
WO2009039419A1 (en) * 2007-09-21 2009-03-26 Wireless Dynamics, Inc. Wireless smart card and integrated personal area network, near field communication and contactless payment system
EP2043016A1 (en) * 2007-09-27 2009-04-01 Nxp B.V. Method, system, trusted service manager, service provider and memory element for managing access rights for trusted applications
US8095113B2 (en) * 2007-10-17 2012-01-10 First Data Corporation Onetime passwords for smart chip cards
US7730248B2 (en) * 2007-12-13 2010-06-01 Texas Instruments Incorporated Interrupt morphing and configuration, circuits, systems and processes
JP4462341B2 (en) * 2007-12-18 2010-05-12 ソニー株式会社 Information processing apparatus and method, and program
US20090159709A1 (en) 2007-12-24 2009-06-25 Dynamics Inc. Advanced dynamic credit cards
SK50042008A3 (en) * 2008-01-04 2009-09-07 Logomotion, S. R. O. Method and system for authentication preferably at payments, identifier of identity and/or agreement
US20090193491A1 (en) * 2008-01-24 2009-07-30 Bindu Rao Secure element manager
US8055184B1 (en) 2008-01-30 2011-11-08 Sprint Communications Company L.P. System and method for active jamming of confidential information transmitted at a point-of-sale reader
JP5207284B2 (en) * 2008-02-08 2013-06-12 エスアイアイ・データサービス株式会社 Payment system and non-contact IC compatible processing device
SK288721B6 (en) 2008-03-25 2020-01-07 Smk Kk Method, circuit and carrier for perform multiple operations on the keypad of mobile communication equipment
EP2286566A1 (en) * 2008-03-28 2011-02-23 Celltrust Corporation Systems and methods for secure short messaging service and multimedia messaging service
US7967215B2 (en) * 2008-04-18 2011-06-28 Vivotech Inc. Systems, methods, and computer program products for supporting multiple contactless applications using different security keys
US8713655B2 (en) * 2008-04-21 2014-04-29 Indian Institute Of Technology Method and system for using personal devices for authentication and service access at service outlets
CN101339685A (en) 2008-05-27 2009-01-07 北京爱奥时代信息科技有限公司 Infra-red ray mobile phones payment terminal, payment procedure and system
US20090307140A1 (en) 2008-06-06 2009-12-10 Upendra Mardikar Mobile device over-the-air (ota) registration and point-of-sale (pos) payment
US20090319287A1 (en) 2008-06-24 2009-12-24 Ayman Hammad Authentication segmentation
CN101329801B (en) 2008-07-23 2011-04-06 中国建设银行股份有限公司 Method for processing mobile phones POS consumptive data and mobile phones POS consumption system
US8662401B2 (en) * 2008-07-25 2014-03-04 First Data Corporation Mobile payment adoption by adding a dedicated payment button to mobile device form factors
US8127999B2 (en) * 2008-08-14 2012-03-06 Visa U.S.A. Inc. Wireless mobile communicator for contactless payment on account read from removable card
US20100045425A1 (en) * 2008-08-21 2010-02-25 Chivallier M Laurent data transmission of sensors
US20100062808A1 (en) * 2008-08-25 2010-03-11 Interdigital Patent Holdings, Inc. Universal integrated circuit card having a virtual subscriber identity module functionality
EP2329563A2 (en) * 2008-08-29 2011-06-08 Logomotion, s.r.o. Removable card for a contactless communication, its utilization and the method of production
US20100063893A1 (en) * 2008-09-11 2010-03-11 Palm, Inc. Method of and system for secure on-line purchases
SK50862008A3 (en) * 2008-09-19 2010-06-07 Logomotion, S. R. O. System for electronic payment applications and method for payment authorization
SK288757B6 (en) * 2008-09-19 2020-05-04 Smk Kk System and method for contactless payment authorization
US9098845B2 (en) * 2008-09-19 2015-08-04 Logomotion, S.R.O. Process of selling in electronic shop accessible from the mobile communication device
SK288641B6 (en) * 2008-10-15 2019-02-04 Smk Corporation Communication method with POS terminal and frequency convertor for POS terminal
US8231061B2 (en) * 2009-02-24 2012-07-31 Tyfone, Inc Contactless device with miniaturized antenna
EP2390817A1 (en) 2010-05-27 2011-11-30 Gemalto SA Method of managing communications with a nfc controller

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2020197783A1 (en) * 2019-03-25 2020-10-01 Capital One Services, Llc Systems and methods for increased efficiency and reliability of contactless card transactions
US11227280B2 (en) 2019-03-25 2022-01-18 Capital One Services, Llc Systems and methods for increased efficiency and reliability of contactless card transactions

Also Published As

Publication number Publication date
BRPI1014882A2 (en) 2016-04-19
ZA201108238B (en) 2012-06-27
CA2739809A1 (en) 2010-10-28
RU2543938C2 (en) 2015-03-10
EP2449512A2 (en) 2012-05-09
JP2012524927A (en) 2012-10-18
CN102640176A (en) 2012-08-15
WO2010122520A2 (en) 2010-10-28
CN102640176B (en) 2016-03-02
BRPI1014882B1 (en) 2020-09-29
MX2011004338A (en) 2011-10-05
AU2010240543B2 (en) 2016-11-17
RU2011145814A (en) 2013-05-27
KR20120018174A (en) 2012-02-29
US20110042456A1 (en) 2011-02-24
CA2739809C (en) 2017-02-28
US8500008B2 (en) 2013-08-06
SK500242009A3 (en) 2010-11-08
WO2010122520A3 (en) 2012-05-10
SK288747B6 (en) 2020-04-02
KR101709099B1 (en) 2017-02-22
AU2010240543A1 (en) 2011-12-08

Similar Documents

Publication Publication Date Title
JP5994996B2 (en) Method and system for electronic payment transaction, particularly electronic payment transaction using contactless payment means
US20200286088A1 (en) Method, device, and system for securing payment data for transmission over open communication networks
US9547861B2 (en) System and method for wireless communication with an IC chip for submission of pin data
JP5562965B2 (en) Electronic payment application system and payment authentication method
US9098845B2 (en) Process of selling in electronic shop accessible from the mobile communication device
US20080257952A1 (en) System and Method for Conducting Commercial Transactions
CN104050565B (en) Intelligent payment system and its mobile terminal based on PBOC payment networks
EP3098786A1 (en) Emv transactions in mobile terminals
WO2013067910A1 (en) Dynamic-payment system and method based on asynchronous communication technology
KR102597502B1 (en) Systems and methods with reduced device processing time
JP2021505057A (en) Systems and methods to prevent relay attacks
US20210383342A1 (en) System and method for wirelessly receiving and processing a fixed sum
CN103679979B (en) Data processing method and data processing equipment
EP2525317A1 (en) Method and apparatus for conducting a payment transaction
EP3474208A1 (en) System and method for performing transactions
CA3008501A1 (en) Emv-session data network and method of processing emv-session data
EP2561489A1 (en) The process of selling in electronic shop accessible from the mobile communication device

Legal Events

Date Code Title Description
A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20130418

A977 Report on retrieval

Free format text: JAPANESE INTERMEDIATE CODE: A971007

Effective date: 20140410

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20140513

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20140811

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20150401

A601 Written request for extension of time

Free format text: JAPANESE INTERMEDIATE CODE: A601

Effective date: 20150701

A711 Notification of change in applicant

Free format text: JAPANESE INTERMEDIATE CODE: A711

Effective date: 20150724

A601 Written request for extension of time

Free format text: JAPANESE INTERMEDIATE CODE: A601

Effective date: 20150731

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A821

Effective date: 20150727

A601 Written request for extension of time

Free format text: JAPANESE INTERMEDIATE CODE: A601

Effective date: 20150831

A59 Written plea

Free format text: JAPANESE INTERMEDIATE CODE: A59

Effective date: 20150909

A59 Written plea

Free format text: JAPANESE INTERMEDIATE CODE: A59

Effective date: 20150915

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20151001

A711 Notification of change in applicant

Free format text: JAPANESE INTERMEDIATE CODE: A711

Effective date: 20151009

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A821

Effective date: 20151013

A02 Decision of refusal

Free format text: JAPANESE INTERMEDIATE CODE: A02

Effective date: 20160330

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20160510

A911 Transfer to examiner for re-examination before appeal (zenchi)

Free format text: JAPANESE INTERMEDIATE CODE: A911

Effective date: 20160530

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20160727

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20160809

R150 Certificate of patent or registration of utility model

Ref document number: 5994996

Country of ref document: JP

Free format text: JAPANESE INTERMEDIATE CODE: R150

R250 Receipt of annual fees

Free format text: JAPANESE INTERMEDIATE CODE: R250

LAPS Cancellation because of no payment of annual fees